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Amendments to the Claims 

A listing of the entire set of pending claims (including amendments to the 
claims, if any) is submitted herewith per 37 CFR 1.121. This listing of claims will 
replace all prior versions, and listings, of claims in the application. 

Listing of Claims: 

1. (Currently amended): A method of generating an Authorized Domain (AD) 
comprises: 

[[-]] selecting a domain identifier (DomainJD) uniquely identifying the Authorized 
Domain (AD), 

[[-]] binding at least one user (P1, P2, PNi) to the domain identifier (DomainJD), 
[[-]] binding at least one device (D1, D2, DM) to the domain identifier 
(DomainJD), and 

[[-]] binding at least one content item (C1 , C2, . . . , CN 2 ) to the Authorized Domain 
(AD) given by the domain identifier (DomainJD), 

thereby obtaining a number of devices (D1, D2 DM) and a number of users 

(P1, P2, PNO that [[is]] are authorized to access content items (C1, C2 CN 2 ) of 

said Authorized Domain (AD) 

wherein access to the at least one content item (C1, C2 CN 2 ) is obtained by 

verifying that the at least one content item (C1, C2 CN 2 ) and the at least one user 

(P1, P2, PN^are linked to the same domain identifier (DomainJD) or by verifying 
that the at least one device (D1, D2, DM) and the at least one content item (C1, 
C2, CN 2 ) ) are linked to the same domain identifier (DomainJD). 

2. (Cancelled) 

3. (Currently amended): A method according to claim 1, wherein the binding at least 
one user (P1, P2, PN1) to the domain identifier (DomainJD) comprises: 
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[[-]] obtaining or generating a Domain Users List (DUC) comprising the domain 
identifier (DomainJD) and a unique identifier (Pers_ID1, Pers_ID2, 
PersJDNi) for a user(P1, P2, PN^ thereby defining that the user is bound 
to the Authorized Domain (AD), 
and/or in that 

the binding at least one device (D1, D2, DM) to the domain identifier 
(DomainJD) comprises: 
[[-]] obtaining or generating a Domain Devices List (DDC) comprising the domain 
identifier (DomainJD) and a unique identifier (Dev. ID1, Dev.lD2, Dev.lDM) 
for a device (D1, D2, DM) thereby defining that the device is bound to the 
doma i n Authorized Domain (AD) . 

4. (Currently amended): A method according to claim [[1]] 3, wherein the binding at 
least one content item (C1, C2, CN 2 ) to the Authorized Domain (AD) comprises: 

[[-]] binding a content item (C1, C2, CN 2 ) to a User Right (URC1, URC2, ... 

URCN 2 ), where said User Right (URC1, URC2, ... URCN 2 ) is bound to a user 

(P1, P2, PNi) which is bound to the Authorized Domain (AD), and/or 
[[-]] binding a content item (C1, C2, CN 2 ) to a Device Right (DevRC), where said 

Device Right (DevRC) is bound to a device (D1 , D2 DM) which is bound to 

the Authorized Domain (AD) , and/or 
[[-]] binding a content item (C1, C2 CN?)to a Domain Rights (DRC1, DRC2. ... 

DRCN?), where said Domain Rights (DRC1, DRC2. ... DRCN?) is bound to the 

Authorized Domain (AD) . 

5. (Cancelled) 

6. (Currently amended): A method according to claim 4, wherein the User Right 
( URC1. URC2, ... URCN?U R€) or the Device Right (DevRC) or the Domain Rights 
( DRC1, DRC2. ... DRCN?O R€) comprises rights data (Rghts Dat) representing which 
rights exists in relation to the at least one content item (C1, C2, CN 2 ) bound to the 
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User Right ( URC1, URC2, ... URCNpU RG) or the Device Right (DevRC) or the 
Domain Rights ( DRC1, DRC2, ... DRCNb BRG). 

7. (Currently amended): A method according to claim 1, the method further comprises 
controlling access to a given content item bound to the Authorized Domain (AD) by a 
given device being operated by a given user, comprising: 

[[-]] checking if the given user is bound to the same Authorized Domain (AD) as the 
given content item, or 

[[-]] checking if the given device is bound to the same Authorized Domain (AD) as 
the given content item, 

and allowing access for the given user via the given device and/or other devices 
to the content item if the given user is bound to the same Authorized Domain (AD), 

or allowing access for the given user and/or other users via the given device to 
the content item if the given device is part of the same Authorized Domain (AD). 

8. (Currently amended): A method according to claim [[1]] 3, the method further 
comprises controlling access to a given content item (C1, C2, CN2), being bound to 
the Authorized Domain (AD) and having a unique content identifier (ContJD), by a 
given device being operated by a given user comprising: 

[[-]] checking if the Domain Devices List (DDC) of the Authorized Domain (AD) 
comprises an identifier (Dev. ID) of the given device, thereby checking if the 
given device is bound to the same Authorized Domain (AD) as the content item, 
and/or 

[[-]] checking if the Domain User List (DUC) of the Authorized Domain (AD) 

comprises an identifier (PersJD) of the given user(P1, P2, PN1) thereby 
checking if the given user is bound to the same Authorized Domain (AD) as the 
content item, 

[[-]] and allowing access to the given content item (C1, C2, CN2) by the given 
device (D1, D2, DM) for any user if the given device is bound to the same 
Authorized Domain (AD) as the content item being accessed, and/or 
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[[-]] allowing access to the given content item (C1, C2, CN2) by any device 
including the given device for the given user if the given user is bound to the 
same Authorized Domain (AD) as the content item being accessed. 

9. (Currently amended): A method according to claim 7, wherein the binding at least 
one content item (C1, C2 CN?) to the Authorized Domain (AD) comprises: 

binding a content item (C1 , C2 CN?) to a User Right (URC1 . URC2. . . . 

URCN?). where said User Right (URC1. URC2. ... URCN?) is bound to a user 

(P1 . P2 PN 1 ) which is bound to the Authorized Domain (AD), and 

wherein the controlling access of a given content item further comprises: 
[[-]] checking that the User Right ( URC1. URC2, ... URCN?U RG) for the given 

content item specifies that the given user(P1, P2, PNi)has [[the]] ajightto 
access the given content item (C1, C2, CN 2 ) and only allowing access to the 
given content item (C1, C2, CN 2 ) in the affirmative. 

10. (Currently amended): A method according to claim 1, wherein every content item 
is encrypted and that a content right (CR) is bound to each content item and to a User 
Right (URC) or a Device Riohte -Right (DevRC) or a Domain Rights (DRC), and that 
the content right (CR) of a given content item comprises [[an]] a_decryption key for 
decrypting the given content item. 

1 1 . (Currently amended): A method according to claim [[3]] 4, wherein 

[[-]] the Domain Users List (DUC) is implemented as or included in a Domain Users 
Certificate, and/or 

[[-]] the Domain Devices List (DDC) is implemented as or included in a Domain 

Devices Certificate, and/or 
[[-]] the User Right (URC1, URC2, URCN 2 ) is implemented as or included in a 

User Right Certificate, and/or 
[[-]] the Device Right (DevRC) is implemented as or included in a Device Right 

Certificate, and/or 
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[[-]] the Domain Rights (DRC1, DRC2, DRCN 2 ) is i mp l omontod/ i nc l udod 
implemented as or included in a Domain Rights Certificate. 

12. (Currently amended): A system for generating an Authorized Domain (AD), the 
system comprising: 

[[-]] means for obtaining a domain identifier (DomainJD) uniquely identifying the 

Authorized Domain (AD), 
[[-]] means for binding at least one user (P1, P2, PNi) to the domain identifier 

(DomainJD), 

[[-]] means for binding at least one device (D1, D2, DM) to the domain identifier 
(DomainJD), and 

[[-]] means for binding at least one content item (C1, C2, CN 2 ) to the Authorized 

Domain (AD) given by the domain identifier (DomainJD), 

thereby obtaining a number of devices (D1, D2, DM) and a number of users 

(P1, P2 PNO that is authorized to access content items (C1, C2 CN 2 ) of said 

Authorized Domain (AD) 

wherein access to the at least one content item (C1, C2 CN 2 ) is obtained by 

verifying that the at least one content item (C1, C2 CN 2 ) and the at least one user 

(P1, P2, PN^are linked to the same domain identifier (DomainJD) or by verifying 
that the at least one device (D1, D2, DM) and the at least one content item (C1, 
C2, CNg^H -CN?) are linked to the same domain identifier (DomainJD). 



13. (Cancelled) 

14. (Currently amended): A system according to claim 12, wherein the means for 
binding at least one user (P1, P2, PNi) to the domain identifier (DomainJD) is 
adapted to [[:]] 

[[-]] obtain or generate a Domain Users List (DUC) comprising the domain identifier 
(DomainJD) and a unique identifier (Pers_ID1, PersJD2, Pers_IDNi) for a 
user(P1, P2, PNi) thereby defining that the user is bound to the Authorized 
Domain (AD), 



Atty. Docket No. NL 030926 



Appl. No. 10/565,663 

Reply to non-final Office action of 17 March 2009 



Page 7 of 13 



and/or in that 

the means for binding at least one device (D1, D2, DM) to the domain 
identifier (DomainJD) is adapted to: 
[[-]] obtain or generate a Domain Devices List (DDC) comprising the domain 

identifier (DomainJD) and a unique identifier (Dev. ID1, Dev.lD2, Dev.lDM) 
for a device (D1, D2, DM) thereby defining that the device is bound to the 
doma i n Authorized Domain (AD) . 

15. (Currently amended): A system according to claim [[12]] 14, wherein the means 
for binding at least one content item (C1, C2, CN 2 ) to the Authorized Domain (AD) 
is adapted to: 

[[-]] bind a content item (C1, C2, CN 2 ) to a User Right (URC1, URC2, ... 

URCN 2 ), where said User Right (URC1, URC2, ... URCN 2 ) is bound to a user 

(P1, P2, PNi) which is bound to the Authorized Domain (AD), and/or 
[[-]] bind a content item (C1, C2, CN 2 ) to a Device Right (DevRC), where said 

Device Right (DevRC) is bound to a device (D1, D2 DM) which is bound to 

the Authorized Domain (AD) , and/or 
[[-]] bind a content item (C1, C2 CN?) to a Domain Rights (DRC1, DRC2. ... 

DRCNA where said Domain Rights (DRC1, DRC2. ... DRCN?) is bound to the 

Authorized Domain (AD) . 

16. (Cancelled) 

17. (Currently amended): A system according to claim 15, wherein the User Right 
( URC1. URC2. ... URCN?U RG) or the Device Right (DevRC) or the Domain Rights 



(DRC) comprises rights data (Rghts Dat) representing which rights exists in relation to 
the at least one content item (C1, C2, CN 2 ) bound to the User Right ( URC1. URC2. 
... URCN?U RG) or the Device Right (DevRC) or the Domain Rights (DRC1. DRC2, ... 
DRCNg PRG). 
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18. (Currently amended): A system according to claim 12, wherein the system further 
comprises means for controlling access to a given content item bound to the 
Authorized Domain (AD) by a given device being operated by a given user, where the 
means is adapted to: 

[[-]] check if the given user is bound to the same Authorized Domain (AD) as the 

given content item, or 
[[-]] check if the given device is bound to the same Authorized Domain (AD) as the 

given content item, 

and allow access for the given user via the given device and/or other devices to 
the content item if the given user is bound to the same Authorized Domain (AD), 

or allow access for the given user and/or other users via the given device to the 
content item if the given device is part of the same Authorized Domain (AD). 

19. (Currently amended): A system according to claim [[12]] 14, wherein the system 

further comprises means for controlling access to a given content item (C1, C2 

CN2), being bound to the Authorized Domain (AD) and having a unique content 
identifier (ContJD), by a given device being operated by a given user, where the 
means is adapted to: 

[[-]] check if the Domain Devices List (DDC) of the Authorized Domain (AD) 
comprises an identifier (Dev. ID) of the given device, thereby checking if the 
given device is bound to the same Authorized Domain (AD) as the content item, 
and/or 

[[-]] check if the Domain User List (DUC) of the Authorized Domain (AD) comprises 

an identifier (PersJD) of the given user (P1, P2 PNi) thereby checking if 

the given user is bound to the same Authorized Domain (AD) as the content 
item, 

[[-]] and allow access to the given content item (C1, C2, CN 2 ) by the given 
device (D1, D2, DM) for any user if the given device is bound to the same 
Authorized Domain (AD) as the content item being accessed, and/or 
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[[-]] allow access to the given content item (C1, C2, CN2) by any device 

including the given device for the given user if the given user is bound to the 
same Authorized Domain (AD) as the content item being accessed. 

20. (Currently amended): A system according to claim 18, wherein the means for 

binding at least one content item (C1, C2 CN?) to the Authorized Domain (AD) is 

adapted to: 

bind a content item (C1. C2 CN?) to a User Right (URC1. URC2, ... 

URCN?), where said User Right (URC1, URC2, ... URCN?) is bound to a user 
(P1 . P2 PN1 ) which is bound to the Authorized Domain (AD), and 

wherein the means for controlling access of a given content item is further adapted to 

further: 

[[-]] check that the User Right ( URC1. URC2, ... URCNbU RG) for the given content 
item specifies that the given user (P1, P2, PN1) has [[the]] a_right to access 
the given content item (C1, C2, CN 2 ) and only allowing access to the given 
content item (C1, C2, CN 2 ) in the affirmative. 

21 . (Currently amended): A system according to claim 12, wherein every content item 
is encrypted and that a content right (CR) is bound to each content item and to a User 
Right (URC) or a Device Riqhte -Right (DevRC) or a Domain Rights (DRC), and that 
the content right (CR) of a given content item comprises [[an]] a_decryption key for 
decrypting the given content item. 

22. (Currently amended): A system according to claim [[14]] 15, wherein 

[[-]] the Domain Users List (DUC) is implemented as or included in a Domain Users 
Certificate, and/or 

[[-]] the Domain Devices List (DDC) is implemented as or included in a Domain 

Devices Certificate, and/or 
[[-]] the User Right (URC1, URC2, URCN 2 ) is implemented as or included in a 

User Right Certificate, and/or 
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[[-]] the Device Right (DevRC) is implemented as or included in a Device Right 

Certificate, and/or 
[[-]] the Domain Rights (DRC1, DRC2, DRCN 2 ) is u 

implemented as or included in a Domain Rights Certificate. 



23. (Previously presented): A computer readable medium having stored thereon 
instructions for causing one or more processing units to execute the method according 
to claim 1. 
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